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This listi ng of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims 

1. (Currently amended) A method for implementing security features at a porta) server, 

comprising: 

receiving a first request from a client; 

in response to receiving the first request, authenticating the client; 

consulting a database to determine access privileges of the authenticated client for 
interactions with a plurality of applications, wherein the applications are located at backend 
servers; 

generating code containing selectable interactions with the applications, wherein any 
authentication for the selectable interactions is performed within the portal server; and 
sending the code to the client; 

res ponsive to sending the code to the client, r eceiving a second request from the client, 
wherein the second request contains a sele c tion of at least one of the selectable interactions; 
determining from the selection a set of backend servers to process the second request; 
forwarding the second request to the set o f backend servers; 

receiving results corresponding to th e second request from applications executing on the 

backend servers: and 

sendin g the results to the client, wherein send ing the results to the client further 

comprises: 

f\) generating farther selectabl e interactions: and 

fii ) sending the further selectable interactions with the results to the client. 

2. (Canceled) 

3. (Canceled) 

4. (Original) The method of claim 1 , wherein the portal server is a Web server and the 
portal server comprises a portal application. 



Page 2 of 19 



PAGE 8/25 * RCVD AT 4/3/2006 7:09:27 PM [Eastern Daylight Time] * SVR:USPT0-EFXRF-1/18 * DNIS:2738300 * CSID:3105567984 * DURATION (mm«ss):07-34 



04/03/2006 16:15 3105567984 



KONRAD RAYNES VICTOR 



PAGE 09/25 



a -m>4+ a»**a "caVsyi ra«; i ?nn* Serial No. 10/090,556 



5. (Original) The method of claim I, wherein the database comprises a pluraLity of 
generic objects, wherein each generic object contains the access privileges related to a user for 
the elements of the plurality of applications. 

6. (Original) The method of claim 5, wherein the access privileges indicate write 

access. 

7. (Original) The method of claim 5, wherein the database is in the form of a table. 

8. (Original) The method of claim 1 wherein the code is in a form that can be rendered 
into a Web page, 

9. (Original) The method of claim 8, wherein the form of the code is comprised of 
active code, wherein the active code can be executed on the client. 

10. (Previously presented) The method of claim 1, wherein the selectable interactions 
correspond to operations within the applications and resources related to the applications, and 
wherein the applications, the operations within the applications, and the resources related to the 
applications are displayed on a single Web page. 

11. (Original) The method of claim 1, wherein the selectable interactions correspond to 
resources related to the applications. 

12. (Ori ginal) The method of claim 1 1, wherein the resources are selected from the 
group consisting of multimedia content, objects, files, attributes of objects, program elements, 
database objects, table entries. 

13. (Currently amended) A method at a backend system for securely making available a 
backend application, comprising: 

creating data structures corresponding to interactions with the backend application; 
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associating privileges for each of the data structures, wherein the privileges are fully 
checked at a portal application separately hosted from the backend application; 

receiving, at the backend application, a request from the portal application for reading the 
data structures; and 

sending, from the backend application, the data structures to the portal application, 
wherein the interactions are operations that can be performed on the backend application and_on 
resources related to the backend application, and wherein the backend application, the operations 
that can be performed on the backend application, a nd the resources related to the backend 
ap plication are displayed o n a single Web page on a client 

1 4. (Previously presented) The method of claim 13, further comprising: 
receiving a request for an interaction with the backend application from the portal 
application; 

processing the request without checking for the privileges; and 

sending the results of processing the request to the portal server application. 

15- (Original) The method of claim 13, wherein the data structures are data objects. 

16. (Original) The method of claim 13, wherein a representation of the data structure is 
from the group consisting of a relational database, an XML document and a class. 

17. (Canceled) 

18. (Previously presented) The method of claim 13, wherein the interactions relate to 
resources associated with the backend application. 

1 9. (Currently amended) A method for accessing a group of applications at a client 
computer comprising: 

authenticating with a portal server; 
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receiving a list of applications and interactions that can be performed with the 
applications from the portal server, wherein the applications are stored at backend servers that 
are different from the portal server; 

selecting an interaction; and 

receiving results based on the selection of the interaction without authenticating with the 
backend «»™"«, uAwrin receiving the re s u l t s f urther compri ses receivinp a set of further 
interactions selectable hv the client computer, wh e rein the portal server performs all necessary 
satenijeatifiaa of the client computer, and wh erein the bac kend servers avoid any authentication 
of the client computer. 

20. (Canceled) 

21. (Original) The method of claim 19, wherein authenticating, receiving the list, 
selecting, and receiving results are at a Web browser. 

22. (Currently amended) A system for implementing security features, comprising: 
a portal server; 

means for receiving a first request from a client at the portal server; 

means for authenticating the client, in response to receiving the first request; 

means for consulting a database to determine access privileges of the authenticated client 
for interactions with a plurality of applications, wherein the applications are located at backend 
servers; 

means for generating code containing selectable interactions with the applications, 
wherein any authentication for the selectable interactions is performed within the portal server; 

roTtl 

means for sending the code to the client; 

means for receiving a second request from the client in response to sending the codejp. 
the client, wherein the second request contains a sele ction of at least one of the selectable 
interactions: 

means tor determining from the selecti on a set of backend servers tn process the second 
request; 
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means for forwarding the_second request to the set of backen d servers; 

means for receiving results corresponding to the s econd request from applications 
executing on the backend servers: and 

means for sending the results to the client, w herein the means for sending the results to 
the client fu rther performs: 

(i) generating further selectable interactions: and 

fin sending the further selectable interactions w ith the results to the client. 

23. (Canceled) 

24. (Canceled) 

25 . CPreviously presented) The system of claim 22, wherein the database comprises a 
plurality of generic objects, wherein each generic object contains the access privileges related to 
a user for the elements of the plurality of applications, wherein the database is in the form of a 
table, wherein the selectable interactions correspond to operations within the applications and 
resources related to the applications, and wherein the applications, the operations within the 
applications, and the resources related to the applications are displayed on a single Web page. 

26. (Currently amended) A system for securely making available a backend application, 
comprising: 

a backend system hosting the backend application; 

means for creating data structures at the backend system corresponding to interactions 
with the backend application; 

means for associating privileges for each of the data structures, wherein the privileges are 
fully checked at a portal application separately hosted from the backend application; 

means for receiving, at the backend application, a request from the portal application for 
reading the data structures; and 

means for sending, from the backend application, the data structures to the portal 



application; 
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means for receiving a request for an interaction with the backend application from the 
portal application: 

means for processing the request without checking fot the pri vileges: and 
means for sending the results of processing the request to the portal app lication. 

27. (Canceled) 

28. (Currently amended) A system for accessing a group of applications comprising: 
a client computer, 

means for authenticating with a portal server from the client computer; 

means for receiving a list of applications and interactions that can be performed with the 
applications from the portal server, wherein the applications arc stored at backend servers that 
are different from the portal server; 

means for selecting an interaction; and 

means for receiving re$ults based on the selection of the interaction without 
authenticating with the backend servers , wherein the mean s for receiving the results further 
performs receiving a set of further interactions selectable bvthe client computer, wherein the 
portal server performs all necessary aut h entications of the client computer, and wherein the 
backend servers avoid an v authentication of the client computer. 

29. (Canceled) 

30. (Currently amended) An article of manufacture including code for implementing 
security features at a portal server, wherein the code is capable of causing operations, the 
operations comprising: 

receiving a first request from a client; 

in response to receiving the first request, authenticating the client; 

consulting a database to determine access privileges of the authenticated client for 
interactions with a plurality of applications, wherein the applications are located at backend 
servers; 
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generating code containing selectable interactions with the applications, wherein any 
authentication for the selectable interactions is performed within the portal server; and 
sending the code to the client; 

res ponsive to sending the code to the client, receiving a second request from the client, 
wherein the second request contains a selection of at le ast one of the selectable interactions; 
determining from the selection a set of backen d servers to process the second request; 
forw-aidjng the second request to the set of backend servers: 

receiving results cor res ponding to t he second reouest from applications executing on tfre 

backend servers; and 

sending the results to the client, wh e rein sending the results to the client farther 

comprises: 

(i) generating farther selectable interactions; and 

(ii ) sending the further selectable interactions w ith the results to the client. 



31. (Canceled) 

32. (Canceled) 

33. (Original) The article of manufacture of claim 30, wherein the portal server is a Web 
server and the portal server comprises a portal application. 

34. (Original) The article of manufacture of claim 30, wherein the database comprises a 
plurality of generic objects, wherein each generic object contains the access privileges related to 
a user for the elements of the plurality of applications. 

35. (Original) The article of manufacture of claim 34, wherein the access privileges 
indicate write access. 

36. (Original) The article of manufacture of claim 34, wherein the database is in the 
form of a table. 
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37. (Original) The article of manufacture of claim 30 wherein the code is in a form that 
can be rendered into a Web page. 



38. (Original) The article of manufacture of claim 37, wherein the form of the code is 
comprised of active code, wherein the active code can be executed on the client. 

39. (Previously presented) The article of manufacture of claim 30, wherein the 
selectable interactions correspond to operations within the applications and resources related to 
the applications, and wherein the applications* the operations within the applications, and the 
resources related to the applications are displayed on a single Web page. 

40. (Original) The article of manufacture of claim 30, wherein the selectable interactions- 
correspond to resources related to the applications. 

41. (Original) The article of manufacture of claim 40, wherein the resources are selected 
from the group consisting of multimedia content, objects, files, attributes of objects, program 
elements, database objects, table entries. 

42. (Currently amended) An article of manufacture, including code for securely making 
available a backend application at a backend system, wherein the code is capable of causing 
operations, the operations comprising: 

creating data structures corresponding to interactions with the backend application; 

associating privileges for each of the data structures, wherein the privileges are fully 
checked at a portal application separately hosted from the backend application; 

receiving, at the backend application, a request from the portal application for reading 
the data structures; and 

sending, from the backend application, the data structures to the portal application* 
wherein the interactions are operations that can be performed ont he backend application and on 
resources related to the_backend application, and w herein the backend application, the operations 
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that can be performed on the backend application, and th e resources related to the backend 
application are displayed on a single Web page on a client. 

43. (Previously presented) The article of manufacture of claim 42, further comprising: 
receiving a request for an interaction with the backend application from the portal 

application; 

processing the request without checking for the privileges; and 

sending the results of processing the request to the portal serve* application. 

44. (Original) The article of manufacture of claim 42, wherein the data structures are 
data objects. 

45. (Original) The article of manufacture of claim 42, wherein a representation of the 
data structure is from the group consisting of a relational database, an XML document and a 



interactions relate to resources associated with the backend application. 

48. (Currently amended) An article of manufacture, including code for accessing a group 
of applications at a client computer, wherein the code is capable of causing operations, the 
operations comprising: 

authenticating with a portal server; 

receiving a list of applications and interactions that can be performed with the 
applications from the portal server, wherein the applications are stored at backend servers that 
are different from the portal server; 

selecting an interaction; and 

receiving results based on the selection of the interaction without authenticating with the 
backend servers , wherein receiving the results farther comprises receiving a set of further 



class. 



46, (Canceled) 



47. (Previously presented) The article of manufacture of claim 42, wherein the 
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interactions selectable bv the client computer, wherein th e portal serve r performs all necessary 
authentications of the client computer, and whg r gto the backend servers avoid any authentication 
of the client computer 

49, (Canceled) 

50. (Original) The article of manufacture of claim 48, wherein authenticating, receiving 
the list, selecting, and receiving results are at a Web browser. 
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